The Web    Google
CERT, ArcSight Partner With 3 Universities On Security Sharing

CERT, ArcSight Partner With 3 Universities On Security Sharing
August 1, 2003

Security software vendor ArcSight is joining the CERT Coordination Center to assist in implementing the Cyber Security Information Sharing Project, a partnership intended to provide a secure information sharing environment across a community of organizations.

Three universities will be selected to be a part of the effort with ArcSight and CERT/CC. Interested universities are invited to contact ArcSight by writing to

Larry Lunetta, vice president and marketing and business development for ArcSight, said his firm is trying to jump start the idea of information sharing within communities.

"The idea has not really taken off as much as experts would have liked," he says. The reasons include the differing standards for exchanging security messages.

To bring more clarity to that effort, ArcSight has committed to have its Distributed Security Architecture support the draft IETF standards for exchanging security messages. These are the IDMEF and IODEF formats, based on XML. IDMEF is device-centric, while IDMEF includes more information about the context of the security message.

Some information sharing is happening within the financial services industries, but ArcSight is hoping to extend to the university community via the value added by the partnership with CERT/CC.

"We need to move forward," says Hugh Njemanze, CTO and co-founder of ArcSight. "There is a lot we can learn by the effort to put this into practice."

ArcSight provides security risk management software known for event aggregation, real time analysis, incident investigation and reporting. The CERT/CC, based at Carnegie Mellon University's Software Engineering Institute in Pittsburgh, provides technical advice, coordinates responses to security compromises and identifies trends in intruder activity.

  • Under the Radar: IM Emerging as a Stealth Threat
  • 3/28: Mytob-N Worm,Trojan Hits IRC Users
  • 1/11: Symbos_Vlasco-B Virus Hits Bluetooth
  • Time to Remind Users of Security Responsibilities
  • 7/23: Psyme-AI Downloads, Executes Trojan
  • 10/21: Rbot-NG Worm Spreads Remotely
  • PHP Zaps Security Leaks
  • 9/8: Downloader-PG Brings in Trojan
  • 3/30: PWSteal.Reanet-c Steals Bank Info
  • 'Land' Bug Back to Bedevil Microsoft Servers
  • Phishing Grows with Holiday Shopping Spike
  • Home Security Camera Background